Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Database Security

Careers and People

Identity & Access Management

Security Monitoring

Advanced Threats

Insider Threats

Vulnerability Management

To InformationWeek

Network Computing Dark Reading

Advertise

Author

Profile of Terry Ray

Chief Technology Officer, Imperva

News & Commentary Posts: 4

Terry Ray has global responsibility for Imperva's technology strategy. He was the first US-based Imperva employee, and has been with the company for 14 years. He works with organizations around the world to help them discover and protect sensitive data, minimize risk for regulatory governance, set data security strategy and implement best practices.

Articles by Terry Ray

View Content By Month

Is 2019 the Year of the CISO?

7/16/2019
The case for bringing the CISO to the C-suite's risk and business-strategy table.
Post a Comment

Collateral Damage: When Cyberwarfare Targets Civilian Data

1/24/2019
You can call it collateral damage. You can call it trickledown cyberwarfare. Either way, foreign hacker armies are targeting civilian enterprises as a means of attacking rival government targets.
Post a Comment

Putting the S in SDLC: Do You Know Where Your Data Is?

3/8/2018
Data represents the ultimate attack surface. Avoid major data breaches (and splashy headlines) by keeping track of where your data is.
Post a Comment

GDPR & the Rise of the Automated Data Protection Officer

9/19/2017
Can artificial intelligence and machine learning solve the skills shortage as the EU's General Data Protection Regulation deadline approaches?
Post a Comment

Editors' Choice

Edge-DRsplash-10-edge-articles

I Smell a RAT! New Cybersecurity Threats for the Crypto Industry

David Trepp, Partner, IT Assurance with accounting and advisory firm BPM LLP, 7/9/2021

Attacks on Kaseya Servers Led to Ransomware in Less Than 2 Hours

Robert Lemos, Contributing Writer, 7/7/2021

It's in the Game (but It Shouldn't Be)

Tal Memran, Cybersecurity Expert, CYE, 7/9/2021

@Hack - November 28-30, 2021 Saudi Arabia - Learn More

Black Hat USA 2021 - July 31-August 5 - Learn More

Enterprise Connect Orlando, September 27-29, 2021: Where Corporate IT Decision Makers Connect - Save $200 with Promo Code IWBX200

More Informa Tech Live Events

White Papers

Gorilla Guide Extended Detection and Response

Case Study: What Elite Threat Hunters See That Others Miss

Privileged Account Management for Dummies

Spear Phishing eBook: Inbound Attacks Detected By Tessian Defender

The Tessian Human Layer Security Platform Architecture

More White Papers

Cartoon

Latest Comment: I've heard of people walking right out the front door with entire servers...

Cartoon Archive

Current Issue

The State of Cybersecurity Incident Response

In this report learn how enterprises are building their incident response teams and processes, how they research potential compromises, how they respond to new breaches, and what tools and processes they use to remediate problems and improve their cyber defenses for the future.

Download This Issue!

Back Issues | Must Reads

Flash Poll

Battle for the Endpoint

Battle for the Endpoint

How to build a new cyber strategy for 2021 and beyond.

How Enterprises are Developing Secure Applications

Assessing Cybersecurity Risk in Today's Enterprises

The Malware Threat Landscape

Twitter Feed

Tweets about "from:DarkReading OR @DarkReading"

Dark Reading - Bug Report

Bug Report

Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database

CVE-2020-18428
PUBLISHED: 2021-07-26

tinyexr commit 0.9.5 was discovered to contain an array index error in the tinyexr::SaveEXR component, which can lead to a denial of service (DOS).

CVE-2020-18430
PUBLISHED: 2021-07-26

tinyexr 0.9.5 was discovered to contain an array index error in the tinyexr::DecodeEXRImage component, which can lead to a denial of service (DOS).

CVE-2021-37576
PUBLISHED: 2021-07-26

arch/powerpc/kvm/book3s_rtas.c in the Linux kernel through 5.13.5 on the powerpc platform allows KVM guest OS users to cause host OS memory corruption via rtas_args.nargs, aka CID-f62f3c20647e.

CVE-2021-37555
PUBLISHED: 2021-07-26

TX9 Automatic Food Dispenser v3.2.57 devices allow access to a shell as root/superuser, a related issue to CVE-2019-16734. To connect, the telnet service is used on port 23 with the default password of 059AnkJ for the root account. The user can then download the filesystem through preinstalled BusyB...

CVE-2020-23240
PUBLISHED: 2021-07-26

Cross Site Scripting (XSS) vulnerablity in CMS Made Simple 2.2.14 via the Logic field in the Content Manager feature.

To save this item to your list of favorite Dark Reading content so you can find it later in your Profile page, click the "Save It" button next to the item.

If you found this interesting or useful, please use the links to the services below to share it with other readers. You will need a free account with each service to share an item via that service.
Tweet This
[close this box]